Q61
Q61 How do you create a new database instance in Amazon RDS using the AWS CLI?
aws rds create-db-instance
aws rds init-instance
aws database create
aws rds new-db
Q62
Q62 Which AWS CLI command is used to delete a DynamoDB table?
aws dynamodb remove-table
aws dynamodb delete-table
aws database delete
aws dynamodb clear-table
Q63
Q63 Your application cannot connect to an RDS instance. What should you check first?
Network ACLs
Instance size
IAM policies
Security groups
Q64
Q64 A DynamoDB table is throttling read operations. What is the likely cause?
Insufficient read capacity
IAM permission issue
Indexing failure
Data inconsistency
Q65
Q65 Your RDS instance is running out of storage. What action can resolve this issue?
Reduce backup retention
Enable automatic storage scaling
Restart the instance
Increase instance type
Q66
Q66 What does IAM stand for in AWS?
Identity and Access Management
Identity and Account Management
Instance Access Management
Identity Access Mechanism
Q67
Q67 What is the purpose of IAM policies in AWS?
To configure network settings
To define permissions for AWS resources
To encrypt data
To monitor usage
Q68
Q68 What is an AWS IAM Role?
A virtual machine
A set of permissions for services
A security group
An EC2 instance
Q69
Q69 What type of encryption keys does AWS KMS use?
Symmetric
Asymmetric
Both
None
Q70
Q70 What is the default key rotation period for AWS managed keys in KMS?
30 days
90 days
1 year
2 years
Q71
Q71 Which AWS CLI command lists all IAM users?
aws iam get-users
aws iam list-users
aws users show
aws iam users-list
Q72
Q72 How do you create a new IAM role using the AWS CLI?
aws iam create-role
aws role add
aws iam new-role
aws iam setup-role
Q73
Q73 Which AWS CLI command encrypts a file using a key in AWS KMS?
aws kms encrypt-file
aws kms encrypt
aws encrypt-file
aws kms secure
Q74
Q74 A user cannot access an S3 bucket despite being added to a group with full S3 permissions. What could be the issue?
Invalid key
Incorrect bucket region
Explicit deny policy
No MFA
Q75
Q75 A Lambda function cannot decrypt data encrypted with KMS. What should you check?
IAM role attached
Lambda timeout
Key rotation
Instance type
Q76
Q76 An IAM user’s API request is failing with “Access Denied.” What is the most likely cause?
IAM policy missing
Region mismatch
Incorrect instance type
Service unavailable
Q77
Q77 What does Amazon CloudWatch primarily monitor?
Application errors
AWS resource usage and performance
Data encryption
Network traffic
Q78
Q78 What is the purpose of Amazon CloudTrail?
Monitoring real-time metrics
Tracking user and API activity
Encrypting log data
Creating dashboards
Q79
Q79 Which of the following is NOT a feature of Amazon CloudWatch?
Creating alarms
Monitoring metrics
User authentication
Storing logs
Q80
Q80 What is the default retention period for CloudTrail logs in S3?
7 days
30 days
90 days
Indefinite
Q81
Q81 What is the primary use of CloudWatch Logs Insights?
Debugging metrics
Querying and analyzing log data
Encrypting logs
Creating alarms
Q82
Q82 Which AWS CLI command retrieves CloudWatch metrics?
aws logs get-metrics
aws cloudwatch list-metrics
aws metrics show
aws cloudwatch metrics
Q83
Q83 How do you create a CloudTrail trail using the AWS CLI?
aws cloudtrail create-trail
aws trail create
aws logs create
aws cloudwatch init-trail
Q84
Q84 Which AWS CLI command enables a CloudWatch alarm for high CPU usage?
aws cloudwatch put-metric-alarm
aws cloudwatch set-alarm
aws alarm set
aws logs create-alarm
Q85
Q85 CloudWatch metrics are not showing up for an EC2 instance. What should you check?
IAM permissions
Instance monitoring enabled
Instance size
VPC settings
Q86
Q86 A CloudTrail log is not appearing in the designated S3 bucket. What could be the issue?
Incorrect S3 bucket policy
IAM role missing
Region mismatch
Trail not enabled
Q87
Q87 A CloudWatch alarm is not triggering despite metrics exceeding the threshold. What should you check?
Alarm state
Metric filters
Notification action
Retention period
Q88
Q88 What is the primary purpose of AWS CloudFormation?
Automate deployments
Monitor application performance
Encrypt data
Manage user access
Q89
Q89 Which AWS tool is used for automating operational tasks across AWS resources?
CloudFormation
CloudTrail
Systems Manager
CodePipeline
Q90
Q90 What is the primary benefit of using AWS OpsWorks?
Application monitoring
Configuration management using Chef or Puppet
Data encryption
DNS management
